Principal Platform Security Engineer
On-site · London, England, United Kingdom or York, England, United Kingdom
Job Summary
Principal Platform Security Engineer leading security practices across cloud and on-prem platforms in a London Market context. Drive secure-by-design initiatives, automate security controls and testing, and mentor a cross-functional Chapter of Platform, DevOps, and SRE engineers. Influence architectural decisions early, champion Terraform-driven infrastructure as code, and coordinate across squads to deliver secure, reliable, and cost-effective cloud solutions on Azure and GCP. Lead security governance, threat modelling, incident response improvements, and security reporting for senior leadership; potential for people leadership of third-party security engineers and partners.
Required Qualifications
- 5+ years’ DevOps/Platform Engineering experience delivering solutions in Azure and/or GCP
- Full-stack application and infrastructure solution design with robust security controls and resilience
- Working knowledge of vulnerability and compliance management, patch management, endpoint protection/anti-malware, and access control management (IAM/PAM)
- Experience with threat modelling and risk assessment applied to cloud architectures and CI/CD pipelines
- Experience with AppSec tooling including CI/CD integration and remediation prioritization
- Strong leadership skills and ability to educate and delegate within a chapter and across teams
- Experience with Terraform and cloud integrations between GCP and Azure
- Knowledge of cloud native, microservices and containerised systems
- Desire for continuous improvement and Agile methodologies
- Excellent communication and stakeholder management skills
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.